Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
File: idvHFWpO58Z9nmhHZ6L0uvijW6s.mft (raw, json)
Hash identifier: 8qN/pN+35Dc47axcG12bVbiEpACABSWLTXfYQhGfX5c=
Subject key identifier: 9A:EC:58:72:22:CA:9F:05:20:55:77:D4:AF:F1:1A:4B:2F:C4:93:75
Authority key identifier: 89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
Certificate issuer: /CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Certificate serial: 0196956092B3D229C84465525EC8D68E45A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
Manifest number: 1521
Signing time: Sat 03 May 2025 09:00:56 +0000
Manifest this update: Sat 03 May 2025 09:00:56 +0000
Manifest next update: Sun 04 May 2025 09:00:56 +0000
Files and hashes: 1: J-tps2ELkCfcCcLwGdsaO09dBP4.roa (hash: 6YmY5CCnPEhTUSkoYzLXDEbRDQk4iktCzj/XnKUd+Ik=)
2: idvHFWpO58Z9nmhHZ6L0uvijW6s.crl (hash: FtRSJrM6XwxiqsIkhS1oeQcXDU7Q9uAF+/1B6sKPeeg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:95:60:92:b3:d2:29:c8:44:65:52:5e:c8:d6:8e:45:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Validity
Not Before: May 3 09:00:56 2025 GMT
Not After : May 4 09:00:56 2025 GMT
Subject: CN=9aec587222ca9f05205577d4aff11a4b2fc49375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b8:68:9a:f3:05:1a:df:7b:c3:68:a8:44:c2:
0e:1c:18:c6:7d:c0:9e:4e:79:77:4f:0f:48:e5:66:
dd:43:be:26:ae:14:06:8a:68:16:c8:fa:9a:cc:b3:
c8:d7:6c:85:70:7b:6e:21:38:c6:79:96:30:0f:13:
32:37:4a:cf:2c:da:69:6d:54:16:ed:3e:d8:01:96:
a6:bb:4b:2d:0e:5e:dc:d6:50:94:43:5b:7f:2b:f8:
9d:04:d0:61:05:2d:92:76:00:42:a3:5e:f2:32:f7:
c0:20:7e:14:6b:5c:0b:78:34:c0:5e:fe:d7:42:b3:
6d:4d:69:47:ca:5e:4e:1f:a9:0d:38:7d:a9:87:67:
86:e9:28:85:11:37:11:87:ed:27:b2:50:1e:32:9c:
dc:e7:28:66:25:d9:98:10:20:36:0c:41:7e:75:e1:
84:e4:bf:01:a9:92:52:01:68:4f:a5:6c:46:1c:71:
6c:a2:35:d9:34:cd:5f:4f:93:da:b4:40:d1:9f:ef:
f5:e8:df:e4:af:5b:2b:46:d1:1e:e2:65:3e:52:13:
8f:41:37:76:16:b3:c6:7c:d1:c3:fe:19:1a:94:c8:
14:c2:00:f7:6f:97:20:bd:9c:b7:38:8f:07:9f:a0:
36:f3:15:3f:6d:ca:eb:68:f2:13:3b:aa:1c:7d:e5:
6a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:EC:58:72:22:CA:9F:05:20:55:77:D4:AF:F1:1A:4B:2F:C4:93:75
X509v3 Authority Key Identifier:
keyid:89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:8e:e9:1e:b2:6b:e7:19:5f:39:ef:0a:ff:ef:9e:12:d2:7d:
bd:2a:6a:a3:ce:23:04:5b:dd:73:b9:0c:bb:55:1a:54:cc:ae:
b4:f9:84:61:7c:94:c0:a5:f4:df:99:b6:69:d1:1f:12:80:79:
d8:6a:0b:15:ca:4b:e2:16:8f:bd:4d:ad:68:e8:b6:4a:f0:0b:
8d:af:63:33:95:6a:c4:8a:12:da:d9:b1:9d:4b:20:58:ed:76:
f1:b0:1f:0b:41:f3:19:ee:dd:57:ef:ba:63:1e:58:7f:1d:5d:
29:73:67:f5:3a:82:e1:2d:1a:0a:5f:cf:dc:d9:14:b7:b5:f2:
0c:bc:22:ec:36:bb:7a:c9:43:3a:84:3a:5b:fb:83:33:c9:3a:
97:70:7a:fd:a4:ac:f2:0b:2d:09:f6:b6:11:8f:05:d9:60:b2:
bf:bd:ac:1f:06:28:3b:56:48:52:05:1a:dd:7e:ae:05:a8:9e:
91:5c:a3:36:e7:72:da:d3:67:38:bb:d5:66:3b:17:25:cb:62:
8f:6a:ce:a0:33:12:4a:78:01:1b:66:ef:ef:8b:fc:b5:db:9f:
ec:0a:da:ce:13:f7:12:dd:2d:78:6e:72:6b:74:f4:d9:50:88:
7c:46:ff:e1:7a:06:04:7d:8b:7e:41:40:cb:3b:8e:15:97:bd:
9f:f8:0e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:38:27 2025 by rpki-client